[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW1] Interpreting 'fw monitor' results

To: [email protected]
Subject: [FW1] Interpreting 'fw monitor' results
From: "Ryan Benning" <[email protected]>
Date: Tue, 23 Jan 2001 18:02:16 -0500
Sender: [email protected]


Does anyone have information on interpreting the results of 'fw monitor'?

For example, I have the following output:
N1004:i[48]: 172.16.1.1 -> 172.17.1.1 (TCP) len=48 id=2266
TCP: 4776 -> 1521 .S.... seq=214f282c ack=00000000
N1004:I[48]: 172.16.1.1 -> 172.17.1.1 (TCP) len=48 id=2266
TCP: 4776 -> 1521 .S.... seq=214f282c ack=00000000
N1006:o[48]: 172.16.1.1 -> 172.17.1.1 (TCP) len=48 id=2266
TCP: 4776 -> 1521 .S.... seq=214f282c ack=00000000
N1006:O[48]: 172.16.1.1 -> 172.17.1.1 (TCP) len=48 id=2266
TCP: 4776 -> 1521 .S.... seq=214f282c ack=00000000


What are the various fields, and what do the various possible values mean? 
I'm especially interested in the alpha codes after the destination port 
number. I've seen the following values: S, A, R, F, PA.

Thanks!
RB
_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com



================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: RE: [FW1] Nokia
Next by Date: [FW1] Nokia Partitions
Prev by thread: RE: [FW1] NOKIA vs SUN on High Availability configuration
Next by thread: Re: [FW1] Interpreting 'fw monitor' results
Index(es):
- Date
- Thread